Indonesian Journal of Electrical Engineering and Computer Science 
Vol. 27, No. 1, July 2022, pp. 347~354 
ISSN: 2502-4752, DOI: 10.1159 1/ijeecs.v27.il .pp347-354 o 347 


An efficient authentication and key-distribution protocol for 
wireless multimedia sensor network 


Basavaraj Patil!, Sangappa Ramachandra Biradar? 
'Sri Dharmasthala Manjunatheshwara Institute of Technology, Affiliated to Visvesvaraya Technological University, Belagavi, India 
Shri Dharmasthala Manjunatheshwara College of Engineering and Technology, Dharwad, India 


Article Info ABSTRACT 

Article history: To provide security and privacy for multimedia data transmission, efficient 
; techniques for authorizing and authenticating network users and nodes are 

Received Mar 24, 2022 required. These challenges have made it a vital and significant area of 

Revised Apr 18, 2022 research in the present decade. Due to resource constraints, existing systems 

Accepted May 24, 2022 are unable to provide adequate protection against vulnerable behaviors and 


security assaults such as black-hole, Sybil, man-in-the-middle, and other 


similar attacks. In this paper, an effective enhanced engineered cementitious 
Keywords: composites (ECC) and crypto-based authentication with a key exchange 
mechanism is proposed. The method boosts the effective authentication 
mechanism and reduces the number of vulnerable activities in the network. 
The simulation results demonstrate that the suggested technique is robust to 


Attack authentication 
Key-exchange 


Multimedia malicious assaults and performs mutual authentication efficiently. A cost- 
Privacy benefit analysis validates that the processing, communication, and storage 
Wireless multimedia sensor requirements are much reduced when compared to existing approaches. 
network Furthermore, an informal security analysis demonstrates that the suggested 


protocol is secure and adaptable to real-time scenarios. 


This is an open access article under the CC BY-SA license. 


Corresponding Author: 


Basavaraj Patil 

Sri Dharmasthala Manjunatheshwara Institute of Technology 
Ujire 574240, Dakshina Kannada, Karnataka, India 

Email: bbpatilcs @ gmail.com 


1. INTRODUCTION 

Wireless multimedia sensor networks (WMSNs) are increasing its scope as a major sub-domain of 
wireless sensor networks that support multimedia data transmission, monitoring, and processing in the network. 
With the rapid growth of technology, the demand for multimedia data such as text, audio, images, and video has 
increased in terms of size, necessity, and flexibility of use. It is critical to safeguard the data transmitted over the 
network [1]-[3]. This issue has made it difficult for the research community to provide efficient solutions to the 
aforementioned issues. The WMSNs can store, and process in real time multimedia data transmission rising 
from heterogeneous sources. The reference architecture of WMSN is as shown in Figure 1. 

Due to the system's reliance on wireless transmission, nearly all the information entering it is at risk of 
interception. Data confidentiality [4], Availability, Authentication [5], Authorization, Integrity, freshness, and 
non-repudiation are the major needs for providing the security [6], [7]. The wide range applications of WMSN 
are data collection, monitoring, and analysis in diverse domains like agriculture, health, and military 
applications [8], [9], as well as pollution and traffic monitoring. The authentication [10], [11] provides 
authorization of the users/node to perform the secured data transmission activities in network. Authentication is 
the one of the major cryptographic services involved in the authentic data processing. It can be carried out using 
digital signatures, using authentication codes between the communication nodes and key-agreement techniques. 
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The major elements required for authentication process are to verify the source identity from sender 
and validating the information veracity for safeguarding the message inventiveness. The preventive measures 
against the attacks can be employed. The process makes use of shared key in which sender and the receiver 
consider same key for verification and authorization. After the verification process, the respective private 
keys are employed to encrypt the information. The process of authorization of the nodes involving in the 
communication are to be verified and validated with some set of protocols in consideration of various 
parameters. The process should consider the identity of the nodes, key distribution time, energy consumption, 
and resource utilization. 
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Figure 1. Typical design of WMSN [12] 


The overview of previous studies on existing authentication protocols are discussed as below. 
Rajeswari and Seenivasagam proposed [10] lightweight authentication protocol (LAP) for smart dust. It 
utilizes lesser keys to guarantee the security for nodes prior to distribution and reduces the communication 
overhead. They evaluation and the experimental results show that has lesser computational and 
communication requirements with reduced overhead. Akyildiz et al. [12] overviewed the various applications 
and reviewed some commercial products available. 

Chatterjee et al. [13] proposed authentication mechanism to resist for the various vulnerable attacks 
in sensor networks with light computational and communicational load. The issues with key management and 
access control are addressed in 4-phases- registration, node validation process by cluster heads, mutually 
authenticating themselves and sharing the generated secret keys. In each session, another key is produced and 
shared to prevent replay attacks. The proposed authentication protocol is designed based on engineered 
cementitious composites (ECC) that withstand the various attacks. The experimental results show that the 
less energy consumption for efficient authentication. It also improved with traffic congestion and delay with 
higher security. Light-weight digital signature algorithm (LWDSA) [14] is an authentication system that uses 
MBLAKE2b and ECCDSA to interact directly or across many hops. Using MBLAKE2b and the elliptic curve 
digital signature technique, the proposed work seeks to construct a light-weight authentication system 
(ECDSA). For constrained WSN contexts, the authors claim that the framework increases longevity and reduces 
computing time. The Scyther protocol verification tool was used to verify and confirm the experimental testing. 

Temirlan and Li [15] propose a redesigned user authentication strategy to address existing scheme 
limitations and improve security. The costs of elliptic curve random point scalar multiplication are replaced 
with cost-effective symmetric-key operations. They integrated ECDSA with medium access control (MAC) 
to improve the security of the authentication process and the reliability of key exchange. 

EdDSA algorithm [16] is an dual structured lightweight authentication mechanism designed with 
dual-topology for multicast WSNs. The vulnerable nodes are optimally observed by a theoretical game model 
to avoid the illegitimate access (man-in-middle attack) with fast authenticity. The simulations conducted on 
NS2 validates that the performance is better, has reduced energy consumption 0.13% and time consumption 
0.07% compared to existing methods. 
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For farm surveillance, Ali et al. [17] devised a remote user authentication technique based on WSN. 
Users are divided into four categories: farmer (user-node), BS, GW-Node, & SN. Sensors may collect 
ecological data such as temperature, moisture, wetness, pH, light intensity, CO2, and so on, and then send it 
to the gateway for monitoring. It is critical to prevent unwanted access, eavesdropping, and malicious 
behaviours on these ecological data in order to maximize productivity. The simulation results show that the 
protocol ensures that key exchange and authentication are both efficient. BAN logic is used to verify validity, 
while AVISPA software is used to ensure resilience to security threats. 

Yasmin et al. [18] present an authentication framework for authenticating sensor nodes both inside 
and outside the network, based on an identity (ID)-based technique and an online/offline signature (OOS) 
mechanism. The simulation is built on TinyOS for MICA2 sensor nodes, and the session keys are only shared 
with outsiders after they have been authorized via the suggested process. The limitations of the existing work 
are overcome with the proposed method. The proposed key exchange and modified ECC based 
authentication mechanisms with digital hashing guarantees the effective authentication of the user in WMSN 
for secure transmission and resistance for the attacks. 


2. RESEARCH METHOD 

The working of the proposed key distribution and authentication protocol is shown in Figure 2. The 
contribution for the work is to design the reliable and enhanced authentication and key distribution protocol 
is implemented for the secured data transmission in WMSN. The formal security analysis is conducted to 
verify the resistance of the known attacks. 

The proposed method provides authentication process with the combination of modified ECC and 
digital hashing. It focusses on achieving the integrity and confidentiality of the data. The sybil attack is 
considered in WMSN to provide an efficient authentication mechanism. The network topology is built, and 
attacks are launched in order to ensure efficient transmission of multimedia data. A novel modified ECC 
based authentication scheme for WMSN is proposed to overcome the limitations the problems of 
authentication in comparison with existing protocols like RSA, ECDSA [14], [19], [20], ECDH [13]. 

In topology, a sender and a receiver communicate with one another to exchange data. Each party 
generates their own private-public keys. These keys are obtained by generating an elliptic curve and the 
points on it. When a node wishes to communicate or send data to another node, the sender node generates a 
shared key using its own private key and the public key of the desired node. The shared key is applied to 
encrypt data sent between nodes. When a node gets data, it generates a shared key as well. This shared key is 
used at the receiver end to decrypt the data. On the other hand, the attacker receives both the sender and 
receiver nodes’ public keys but is unable to generate the shared keys. The data transmission procedure is 
complete by the time the attacker attempts to decrypt the data using various keys. As a result, the data is 
secured using ECC-based key exchange. The phases involved in the establishing the connection, key 
exchange and authenticating between the user, gateway and sensor nodes. 


Registration 


Login & Authentication 


User 


Figure 2. Working of proposed registration and login phases 


2.1. Registration phase 

In any communication channel, the process of data transmission starts with the registration. It is 
mandatory phase to verify authenticate users and allow them to participate in the network. The registration as 
in Figure 3 taken place between user-gateway and later between sensor node and gateway. The notations are 
listed in Table 1 and the registration steps are as follows: 
a) Registering user-node and gateway 
— The user U selects ID; and password PW; 
— Select the random integer n and calculate pw= h (Pwi © n) * P 
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— Generate pairs of signature keys and validation keys (Qi, qi) and send message {pw, IDi, Qi} to the GW 
— GW contains value Qi, sets crypto shared keys (Qv, qv) 

— GW calculates a=h(pw || IDi)*P and send the message {a, qv} to Ui 
— When receives message stores values (a,qv,n,P) 


b) Registration of gateway with sensor node 


— Sj selects IDj, h(PW;) and generates random number y 
— Sj calculate c= h(IDjlly), j= haD; II c I| h(PW)IIT1) and send message {j, ID;, h(PW;), c, Tı} to the GW 
— GW verifies the T; timestamp and compare value of j with new updated one. 
— GW calculates d=h(cllID;)*P, g=d.x @h(ID; llh(PW)) and f=h(gllT2) 

— GW sends message {f, g, T2} to sensor node S; 

— Verify timestamp T2, compare received value with new and stores it. 


User Gw Sensor 
Input: ID; and PWi ID;, h(PW)) 
Compute: Compute: 
pw= h(PWi © b) * P c=hdDj Illy) 
J= b GD; II c Il h @W)) Il Ta) 
Generate: keys (Qi, qi) 
Pw, Idi,Qi jADj.hW)), c.T1 
Generate: (Qv, qv) d=h(c||IDj)*P 
a=h(pw']| IDi)*P g=d.x@h(IDj|Ih(PW)) 
fh G II T2) 
a, qv f, g, T2 
— — 2 
Store (a,qv.n,P) 
d*=g€h(ID; ||h(PWj) 
stores d 
Figure 3. Registration phase 
Table 1. Notations used 
Notation Description Notation Description Notation Description 
Ui User node Sj Sensor node Sigu(m) Signing algorithm on 
ECC for Ui 
ID; User identity ID; Sensor node identity Ni, Nx Nonces 
PW; User password pwj Sensor node password HMAC(M, K) Crypto hash calculation 
GW gateway hd hash function M signed message 
q, p prime numbers (p=2q+1) P large order point chosen for sk session key 
EC (user) 
Qi, qi Public-private key of U; Qy, qv Public-private key of Uj 


2.2. Login and authenticate phase 


One the user register to the network, the next phase to provide the access to the take part in the 
network, this process is carried out with login phase, to verify the user with ID assigned and respective 
password to each node. Once the login is successful, the exchange of secret keys between User and GW and 
then with sensor node. The users need to connect to sender node through gateway as shown in Figure 4. 


a) Login phase 
—  U;inputs ID; and PW; 


— Calculate new values of a*=h(pwIlID;) *P and compare 

— U; picks random nonce key k and Ni, where k is a HMAC key 

—  Ujcalculates secret value R=a*qy and cipher text w=(kIINi) @R.x 
— Create an ECC signature s=Sig,(a || w) and send the message {s,a,w} to the GW 


b) Authentication 


— GW receives message from Ui and restore secret value R=h(pwIlIDi)*Qy 


— Obtain key value k from value w 
— Select generated random value Nx 


— Calculate session key sk= h(Nxllk) and cipher text e=sk@R.x 
— GW initially sends message {e, HMAC(e,k)} to Ui, verify HMAC and calculates session key sk=e @R.x 
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— GW calculate Z=R.x@d.x pass on message {pw,e,Z,w} to sensor Sj 
- Sj obtains R from Z=R.x@d.x and calculate session key sk=e@R.x 
—  §j obtain k from w and send message E(pw.x|INi,Sk), HMAC(E(pw.x |INi,sk),k) to U; 
— U; validates hash value, cipher text is encoded to verify acknowledged session key sk. 


User GW Sensor 
Input: ID; and PWi 
Compute: 
a*=h(pwillID:) *P 


Generate: 
Random nonce k, Ni 


Compute: 
R=a*qv 
s=Sigu(a || w) 
w=(kIINi) @R.x 


s,a,w R=h(pwilIDi)*Q. 
a at Generate: Nk 
Compute: 
sk= h(Nkllk) 
e=sk@R.x 
e, HMAC(e.k) 
qq 
Compute: 
Z=Rx@d.x 
pw.Z,e,w 
— 
R= Z d sk=e®R.x 


Obtain k from w 


E(pw-xl|INi Sk), HMAC(E(pw.x |IN;sk),k) 


Verify HMAC 
Decrypt cipher 
Check sk 


Figure 4. Login and authentication phase 


3. RESULTS AND DISCUSSION 
3.1. Security analysis 

To evaluate the proposed authentication mechanism, it is required to evaluate its performance. The 
various attacks like node replication, sybil, insider and Man-in-middle attacks are tested. The results justify 
that security analysis of the proposed method has stability to the security attacks and deliver secure 
authentication. 


3.1.1. Node replication attack 

The proposed authentication process helps to reduce the replication attacks. The forged nodes are 
created by the attacker which matches with the genuine nodes and try to accumulate the information like 
node-id (ID), public and private keys (Q,q). In this type of the attacks, the attacker collects the required 
information and imitate to duplicate the original sensor node (Sj) with forged node [20]. The scheme also 
incorporates the reply message attack, hence the fresh nonce for each node is used. The reply is not sent to 
forged node, as it uses the retrieved old nonce value. Hence it is shown that the proposed scheme is protected 
against repetition attack. 


3.1.2. Sybil attack 

The design is setup by introducing the sybil attack, where the malicious or unauthorized user try to 
pretend as the original node (S;) by obtaining the forged data. In the proposed scheme, the identity (U;,Uj) of 
each node participating in the network is verified by the signature generated. The exchange of the key (Qi, qi, 
Q,, qv) happens only between the verified nodes only. The HMAC gives the additional security feature to 
guarantee the data transmission only between valid nodes (Uj, Uj) and cannot pass through the gateway 
(GW). Hence the proposed scheme is resistant against the Sybil attack. 
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3.1.3. Insider attack 

In this scheme, it’s impossible to gather the user credentials as it consists of value of n and pwi.. The 
value of n is unpredictable to guess, hence even the insider of GW nodes is impossible obtain credentials. 
Therefore, the purported scheme is resistant to insider attack. 


3.1.4. Man in-the middle attack 

In this type of attack, the intruder tries to listen the conversation between two nodes. The exchange 
of the messages takes place only between the user U;, GW and sensor node Sj only after verification of 
HMAC value. Hence the proposed scheme allows only the legal and legitimate users are allowed. 


3.1.5. Mutual authentication 

The process of verification of nodes is done at the initial stage of registration and login phase. The 
communication happens only between two-entities: User nodes-gateway or gateway-sensor nodes. The 
HMAC value provides the evidence of message integrity. The GW authenticates the participating nodes by 
verifying the hash key k. The messages sent back with verified crypto hash key. 


3.2. Performance analysis 

The proposed mechanism is much suitable for the low-powered sensor networks. It consumes lesser 
power and less space experimental results. NIST advised network parameters are consider for the 
implementation. The performance evaluation is conducted with security features, computational cost, and 
communication cost. The various features required to prove the better security of the proposed protocol the 
features shown in Table 2 are compared over [21]-[25] schemes. 


Table 2. Comparison of security features 
Security features [21] [22] [23] [24] [25] Proposed 


Tolerant for password guessing attack x x x J x vV 
Delivers efficient login x V X vV vV v 
Provide mutual-authentication WA V WA vV V v 
Session-key security Vv v v v v v 
Tolerant for replay attack vV x v x v v 
Tolerant for GWN bypass attack J WA V V v vV 
Tolerant to denial-of-service attack vV V x x x v 


3.2.1. Computation cost 

The computation costs include registration, login phase, key generation, and authorization. The hash 
function needs very less computing time, including cryptographic acts and key encoding. The state-of-art 
outcomes with execution time th ~ 0.0004 s, and encryption/decryption time tea = 0.0017s. The computation 
cost for the GW node is bit greater than a sensor node. In considesration of better security, bit high 
computational cost with all security features is desirable. The comparative analysis of proposed mechanism 
with existing schemes [21]-[23], [26] are as shown in Table 3 and Figure 5. It gives the time taken for the 
computation cost at different levels. 


Table 3. Computation cost evaluation 


Scheme User GW Sensor Node Overall Cost | Time(ms) 
[21] 3th 2th + 2tea Sth 10th + 2tea 22.4 
[26] 8th 10t, Sth 23th 11.5 
[22] 8th + 2tea 6th + Itea 7th + Itea 21th + Atea 45.3 
[23] 6th 10th Tth 23th 11.5 

Proposed Tth 6th 4th 18th 7:2 
The notation used for computation time are as follows, 
Ta >> hash computation time Tea > Symmetric encryption/decryption 


3.2.2. Communication cost 

The total bits transmitted in login-stage and authentication-stage is called as communication cost. 
For the fast data transmission and reduce traffic congestion, the communication cost should be less as much 
as possible. The comparative analysis of the cost for various protocols is as shown in Figure 5 and Table 4. 
The cost of [22] less compared to our protocol, but all the security features are not satisfied in it. The highest 
cost of [26] is 2432 bits (19*128) and hence our proposed protocol has less computational cost without 
compromising any security aspects (features). 
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Figure 5. Computation cost of different schemes 


Table 4. Communication overhead and storage cost 


Schemes Communication cost (bits) Storage cost (bits) 
[21] 1,792 672 
[26] 2,432 640 
[22] 1,024 896 
[23] 1,920 640 
Proposed 1,280 512 


3.2.3. Storage cost 

As the sensor nodes are available with lesser memory storage, the consumption of memory is also 
equally important to improve the performance. The total number of bits stored is referred as the storage cost. 
The Table 4 its evident that proposed scheme has a smaller amount of storage overhead than the existing 
methods as represented in Figure 6. 
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3000 
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2000 


t (bits) 
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> 1000 
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Comparsion of Protocols 


Figure 6. Communication and storage cost of different schemes 


4. CONCLUSION 

The challenging task in WMSN is to ensure reliable and secure data transfer. The proposed 
authentication and key distribution protocol improves the node authorization and effective key exchange 
mechanism for secure data transfer. Users must first register before being involved in the data transfer 
process. Later, users are authenticated using shared crypto keys. The security analysis proves that the 
proposed mechanism provides efficient mutual authentication and resilience to various security assaults. 
Furthermore, it provides security against vulnerabilities like password guessing resistance, replay resistance, 
effective login, session key security, gate-way bypass assault, and denial-of-service attack. The performance 
was evaluated and found to be better than other methods in terms of safety. In the future, the authentication 
process can be strengthened to withstand all forms of vulnerable activity, and key exchange can be improved 
using efficient cryptographic algorithms. 
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